package com.mcj.tokendemo.entity;

import com.alibaba.fastjson.annotation.JSONField;
import lombok.AllArgsConstructor;
import lombok.Data;
import lombok.NoArgsConstructor;
import org.springframework.security.core.GrantedAuthority;
import org.springframework.security.core.authority.SimpleGrantedAuthority;
import org.springframework.security.core.userdetails.UserDetails;

import java.util.ArrayList;
import java.util.Collection;
import java.util.List;
import java.util.stream.Collectors;

@Data
@NoArgsConstructor
public class LoginUser implements UserDetails {
	
	private User user;
	
	private List<String> permissions;
	
	public LoginUser(User user, List<String> permissions) {
		this.user = user;
		this.permissions = permissions;
	}
	
	@JSONField(serialize = false)
	private List<SimpleGrantedAuthority> authorities;		// 不需要序列化到redis中
	
	@Override
	public Collection<? extends GrantedAuthority> getAuthorities() {
		if (authorities != null) {					// 避免重复访问 多次不必要的转换
			return authorities;
		}
		// 把permissions中string类型权限封装成SimpleGrantedAuthority对象
//		authorities = new ArrayList<>();
//		for (String permission : permissions) {
//			SimpleGrantedAuthority authority = new SimpleGrantedAuthority(permission);
//			authorities.add(authority);
//		}
		
		authorities = permissions.stream()
				.map(SimpleGrantedAuthority::new)
				.collect(Collectors.toList());
		
		return authorities;
	}
	
	@Override
	public String getPassword() {
		return user.getPassword();
	}
	
	@Override
	public String getUsername() {
		return user.getUserName();
	}
	
	@Override
	public boolean isAccountNonExpired() {
		return true;
	}
	
	@Override
	public boolean isAccountNonLocked() {
		return true;
	}
	
	@Override
	public boolean isCredentialsNonExpired() {
		return true;
	}
	
	@Override
	public boolean isEnabled() {
		return true;
	}
}
